Overview

overview

10

Static

static

10

bdced8b193...ce.exe

windows7-x64

1

bdced8b193...ce.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f38373a769d5f63cdfb33efa4d98fbfc.bin

  • Size

    138KB

  • MD5

    7a03c56ebaccfa5f65e76641ceec6c2b

  • SHA1

    e0b5a466cb309c78c719cc1c6df80da296e1bbdd

  • SHA256

    ce21f3957069af116935a48571554e3c3b82a0d59ba8c354f756b372b19f8d11

  • SHA512

    42d5dd6951b0fbc7520e82c3b21310c592034a8704028bbadd35276d1dc5ea48c3471ccb2a153316cecbbcc0441af21e5d59c0129ea42774fed0372da31782af

  • SSDEEP

    3072:vfn1IUUzTusgFp03CWr7H3SHRuTmX+QRDgeh7K6Zhk:vfhUz0R8zlmuKDHhk

Score
10/10
upxblackmoon

Malware Config

Signatures

  • Blackmoon family
    blackmoon
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f38373a769d5f63cdfb33efa4d98fbfc.bin
    .zip

    Password: infected

  • bdced8b193bc1fb89478e4857c1a65fdd8fdcaab0dbcf163a2678790855838ce.exe
    .exe windows:4 windows x86 arch:x86

    Password: infected

    da4a387004bf1285d93edaa4d5233098


    Headers

    Imports

    Sections